OSPF - Redistribute static on ASA

thefindjack · ‎11-22-2011

Im trying to redistribute some static routes into OSPF on a Cisco ASA 5520 running 8.2(2). I need to filter a few specific routes from being redistributed but I cant seem to use a prefix list with a route-map on ASA. Does anybody know how else to accomplish this on ASA?

ASA(config)#prefix 1 permit 10.10.10.0/24

ASA(config)#prefix 1 permit 10.10.20.0/25

ASA(config)#prefix 1 permit 10.10.30.0/26

ASA(config)#

ASA(config)#route-map REDIST_STATIC_BLOCK deny 10

ASA(config)#match ip address (only allows access-list here on ASA)??

ASA(config)#route-map REDIST_STATIC_BLOCK permit 10

ASA(config)#

ASA(config)#router ospf 1000

ASA(config)#redistribute static subnets metric-type 1 route-map REDIST_STATIC_BLOCK

ASA(config)#end

Amit Singh · ‎11-22-2011

ASA 8.3 version supports matching on prefix-list and ACL's as per the command refrence. Prefix-list can be used to help overcome the limitation.

http://www.cisco.com/en/US/docs/security/asa/asa83/command/reference/m.html#wp2116239

Cheers,

-amit singh

auranprost · ‎01-10-2012

Hi,

According to what I remember, everytime you try to filter a route with a prefix list on the ASA you should just match a standard ACL.

In this case that you`re trying to filter the following command:

asa(config)# match ip address [acl-id]

Will be configured with an standar ACL which matches the routes with a destination that matches the ACL.

You can check the whole explanation here:

http://www.cisco.com/en/US/docs/security/asa/asa82/configuration/guide/route_maps.html

BR,

Bruno Silva.